Let Us Help

Comprehensive and consistent protection

As cyberattacks evolve, network security requires unparalleled visibility and intelligence covering all threats for comprehensive protection. And with differing organizational responsibilities and agendas, you need a consistent security enforcement mechanism. These increasing operational demands call for a renewed focus on dedicated NGIPS to provide a deeper level of security and visibility for the enterprise.

NGIPS features and benefits

Visibility

With Firepower Management Center, you can see more contextual data from your network and fine-tune your security. View applications, signs of compromise, host profiles, file trajectory, sandboxing, vulnerability information, and device-level OS visibility. Use these data inputs to optimize security through policy recommendations or Snort customizations.

Efficacy

NGIPS receives new policy rules and signatures every two hours, so your security is always up to date. Cisco Talos leverages the world’s largest threat detection network to bring security effectiveness to every Cisco security product. This industry-leading threat intelligence works as an early-warning system that constantly updates with new threats.

Operational cost

Use NGIPS automation to increase operational efficiency and reduce overhead by separating actionable events from noise. Prioritize threats for your staff and improve your security through policy recommendations based on network vulnerabilities. Stay informed on what rules to activate and deactivate, and filter events pertinent for the devices on your network.

Flexibility

Cisco Firepower NGIPS flexible deployment options meet the needs of the enterprise. It can be deployed at the perimeter, at the data center distribution/core, or behind the firewall to protect mission-critical assets, guest access, and WAN connections. NGIPS can be deployed for inline inspection or passive detection.

Integration

Firepower NGIPS plugs into your network without major hardware changes or significant time to implement. Enable and manage several security applications from a single pane with Firepower Management Center. Seamlessly navigate between NGIPS, NGFW, and AMP to optimize your security and ingest third-party data through Cisco Threat Intelligence Director.

High-performance appliances

Cisco Firepower (4100 Series and 9000 Series) and FirePOWER (7000 Series and 8000 Series) appliances are purpose-built to provide the right throughput, modular design, and carrier-class scalability. They incorporate a low-latency, single-pass design and include fail-to-wire interfaces.

Cisco 2019 Cybersecurity Threat Report

Superior threat protection from Firepower NGIPS

Intrusion detection: Stop more threats and address attacks. For vulnerability prevention, the Cisco Next-Generation Intrusion Prevention System can flag suspicious files and analyze for not yet identified threats.

Public cloud: Enforce consistent security across public and private clouds for threat management. Firepower NGIPS is based on Cisco’s open architecture, with support for Azure, AWS, VMware, and more hypervisors.

Internal network segmentation: Accommodate network agendas with an enforcement mechanism that spans the requirements of various internal organizations.

Vulnerability and patch management: Use insights from Cisco IPS to patch high-priority vulnerabilities in a shorter period with fewer resources, without delay from your organization’s test process or environment.

Upgrade to Firepower NGIPS

If you have a Cisco IPS or Sourcefire NGIPS, find an upgrade path that’s best for you. (PDF - 328 KB)